Back to search
CVE-2022-48672
Published: May 3, 2024
Modified: May 11, 2026
PUBLISHED
Description
In the Linux kernel, the following vulnerability has been resolved: of: fdt: fix off-by-one error in unflatten_dt_nodes() Commit 78c44d910d3e ("drivers/of: Fix depth when unflattening devicetree") forgot to fix up the depth check in the loop body in unflatten_dt_nodes() which makes it possible to overflow the nps[] buffer... Found by Linux Verification Center (linuxtesting.org) with the SVACE static analysis tool.
| Vendor | Product | Versions |
|---|---|---|
Linux | Linux | affected 78c44d910d3e5f96dc6b3695fc1e4efd7c46a455 - < cbdda20ce363356698835185801a58a28f644853affected 78c44d910d3e5f96dc6b3695fc1e4efd7c46a455 - < 2566706ac6393386a4e7c4ce23fe17f4c98d9aa0affected 78c44d910d3e5f96dc6b3695fc1e4efd7c46a455 - < e0e88c25f88b9805572263c9ed20f1d88742feafaffected 78c44d910d3e5f96dc6b3695fc1e4efd7c46a455 - < ee4369260e77821602102dcc7d792de39a56365caffected 78c44d910d3e5f96dc6b3695fc1e4efd7c46a455 - < ba6b9f7cc1108bad6e2c53b1d6e0156379188db7+2 more versions |
Linux | Linux | affected 4.7unaffected 0 - < 4.7unaffected 4.14.295 - <= 4.14.*unaffected 4.19.260 - <= 4.19.*unaffected 5.4.215 - <= 5.4.*+4 more versions |
References
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now